cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
922
Views
6
Helpful
13
Replies

Tunnel protocol down but status up when configuring VPN

ss571
Level 1
Level 1

I'm trying to configure a VPN between R8 and R10 (cisco c7200 routers) at GNS3 in the image below:

ss571_1-1706261235825.png

But before that I've configured a tunnel between R8 and 10. I've inserted the mode, source and destination to both side's tunnel 1 interface. But even after doing so, the tunnel protocol stays down even when the status is up.

Startup config for R8:

Screenshot 2024-01-26 171903.png

Startup config for R9:

Screenshot 2024-01-26 172037.png

Startup config for R10:

Screenshot 2024-01-26 172115.png

All the other configs are the same as the default settings

Anyone might know the cause? Please advise

Thank you

If there are any additional information you would like to know do inform me, I will add them on here

1 Accepted Solution

Accepted Solutions

@ss571 

add static routes on R8 R9 and R10.

R8: ip route 201.90.1.1 255.255.255.255 148.91.0.3

R9: ip route 190.90.0.1 255.255.255.255 148.91.0.2

ip route 201.90.1.1 255.255.255.255 148.92.0.2

R10: ip route 190.90.0.1 255.255.255.255 148.92.0.3


Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.

View solution in original post

13 Replies 13

Only config static route for LO in three routers 

The LO is not reachable and router use it as tunnel source 

MHM

Meaning need to set static route with null0 in R8 and R10?

 

No ypu need static route for lo

As following 

R8

ip route 201.90.1.1 255.255.255.255 148.91.0.3

R9

ip route 190.90.0.1 255.255.255.255 148.91.0.2

ip route 201.90.1.1 255.255.255.255 148.92.0.2

R10

ip route 190.90.0.1 255.255.255.255 148.92.0.3

Two static route in R9 for both Lo of R8 and R10

MHM

Ok, btw is R8 supposed to be able to ping 148.92.0.3 also? When i tried to ping it, it was unsuccessful too

ss571_1-1706266823391.png

 

Check below my answer 

MHM

Two static route in R9 for both Lo of R8 and R10
By this sentence here do you mean

ip route 201.90.1.1 255.255.255.255 190.90.0.1 for R8 and 
ip route 190.90.0.1 255.255.255.255 201.90.1.1 for R10?

M02@rt37
VIP
VIP

Hello @ss571 

From R8 do you ping 201.90.1.1 with source 190.90.0.1 ?

 

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.

So far they can't ping each other, when i tried to ping R8 to R9's G2/0 they cant ping as well

 

@ss571 

add static routes on R8 R9 and R10.

R8: ip route 201.90.1.1 255.255.255.255 148.91.0.3

R9: ip route 190.90.0.1 255.255.255.255 148.91.0.2

ip route 201.90.1.1 255.255.255.255 148.92.0.2

R10: ip route 190.90.0.1 255.255.255.255 148.92.0.3


Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.

Ok, I've added these routes in, should R8 be able to ping R9's int g2/0?

No these static route make tunnel up/up

Then you can ping from R8 to R10 using tunnel IP (you need to specify source in ping command and it must be tunnel ip)

MHM

ss571
Level 1
Level 1

Thank you very much to everyone for your help and advices, it really helped a lot and I really appreciate it

It seems that my GNS3 software had bugs as initally I've faced a few bugs before, so I made a new project and reconfigured the tunnel. Btw I apologize as I have forgotten to mention that there are eBGPs configured between the 3 routers in 3 different AS's. After reconfiguring it, now it works instead 🫠

Friend you are so welcome 

MHM

Review Cisco Networking for a $25 gift card